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PRMARKS 

in Che application, with independent 
Claiws 1-14 remain xn tne app 

claim 1 Slaving been amended hereby. 

V, .r, carefully reviewed and amended with 
The claims have been carefully r 

particular attention to the points raised in the Office 
particula ,,„er has been added and 

Action. It ^8 sutomittea i;na 

xxoted in the office Action. ,e xj S C § 

Withdrawal of the rejection of claim 1 under 3. U.S.C 
first paragraph, is respectfully revested 
Heconsideration is respectfully requested of the 

. , ^^^v ^5 U S C. § 103(a), as allegedly 
rejection of claim l under 35 U.s.c. 

- - - - - - ec al., ""A Survey of 

^eing unpatentable over ClarK et al , ^ 

authentication Protocol Literature: Version 1-0, 
(hereinafter -Clark et al.") - 

applicants have carefully considered the cedents of the 
Office Ltion and the cited reference, and respectfully .ubm.t 
...t amended independent claim 1 is patentably distinct over 
.he cited reference for at least the following reasons. 

,...ent invention relates to a method and apparatus 

. .>,«ntication of components in a network using a 
for mutual authentication oi. f . ^ =, 

«^^Hod At least one data pair including a 
challenge-response method. At lea . 

^r,A « first response are requested from an 
first random number and a f irsc re v 
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^^r^^ The first random number is passed co a 
authenticacion center. Tne 

-inrPT-nallv Stored key and the first 
terminal which uses an internally s 

.ando«. nu«toer to calculate the first response. 

rhe calculated first response is sent to the network, and 
a second response calculated in the authentication center xs 
sent in response to a second random nu^er . The first 
response sent fro. the terminal to the network is used as the 
second rando. nunU^er. The net^rk has previously requested 

second response fro. the authorisation center together 
with the first rando. number and the first response a. a 

triplet data set. 

Clark et al., as understood by Applicants, relates to a 
compendium of information related to authentication, including 
cryptographic prerequisites, protocol types, attacking 
authentication protocols, methods for analysis of 
authentication, and a protocol library. 

The Office Action cites section 6.3.1 of Clark at al . a. 
allegedly disclosing- a method comprising, inter alia, a step 
of passing the first random number (Challenge 1> to the 
terminal which uses an internally-stored key and the first 
.^dom number to calculate the first response (Response 
Csee Office Action, p- 4, Ins. 3-17) - The Office Action 
farther states tbat [t]his challenge is a random nux^er 

^ " fR^e id ) . Applicants 

since keys are random numbers ... (see xd.j . PP 

respectfully disagree. 

AS understood by Applicants, the cited section of Clark 
\^ al. relates to symmetric key protocols involving trusted 
chird parties, and specifically to tne Needha. Schroeder 
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Pronocol witH conventional keys Ceee Clark et al . , PP- 46-47). 
in Che third step of the protocol, A - B : E (Kbs : Kab, A) . A 
sends to B the encrypted message convponent obtained from the 
server (see id.; p- 19/ Ins. 1-30). 

It is respectfully submitted, however, that an encryption 
key (e.g., Kab) is not equivalent to a random number (e.g., 
Nb) . An encryption key is a predefined and specific numeric 
value which is used for a certain period of time and which is 
not changed during the period of time. The key cannot be 
randomly selected as it must be known to both terminal and 
network. 

in contrast, a random number is a randomly- selected 
number used, for example, as a Challenge value in an 
authentication procedure. Different random numbers may be 
used for each authentication procedure performed - 

Furthermore, it is respectfully submitted that the 
protocol described in the cited section of Clark et al . does 
not disclose the mutual authentication method recited in the 

present invention. 

As understood by Applicants, the method set forth in 
section e.3.1 o£ Clark et al - includes five messages (see 
Clark et al . , P- 19, Ins. 2-28; p. 46, Ins. 21-29). 

in message (1), server S sends a key to A upon request, 
and includes nonce Na (see id.) . 

Message (2) is senc from S to A, and includes an 
encrypted message E which is encrypted with key Kas . Kas is 
known only to a and S, and message E includes random number 
Na, identifier B, key Kab, and encrypted message B including 
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toy Kab id.n.i£l.r A e„«ypted wit^ key KBs (se. id., . 
„es„ge E cnnot a.c^t.d by . because i. doe. no. l»ow 

key Kbs . 

Message (3) is se.. fro. A to B is encrypted witl. Xey 

Kbs and include. Jcey Kab and identifier A Cse. id.) . No 
..ndon. number (Challenge) i. included in tlxis .escage. 

in message (4) , B sends rando. nutnber Nb (Cixallenge 1) . 
encrypted with key Kab, to A (see id.) - 

xn :nessage (5), A sends a response (Response 1) h^-.ng a 
value o£ (Nb-D to B, encrypted with key Kab (see id.) . 

Xt is respectfully submitted, however, that the method of 

^4 « nark et al - does not disclose or suggest 
the cited section of ClarK ec ax 

the use of two challenge values and two response values for 
..thentiction, as recited in amended independent claim 1. 

contrast, in the mutual authentication method of the 
present invention, as recited in amended independent claim 1, 
at least one data pair including a first random number 
(Challenge 1) and a first response (Response l) are requested 
from an authentication center using a re^e.t from the 
network, the first random number (Challenge 1) is passed to 
the terminal which calculates the first response (Response .) 
based upon an internally stored key and the first random 
nutter (Challenge 1) , and the calculated first response 
(response I) is sent to the network. The network responds to 
. second random number with a second response d^esponse 2) 
calculated in the authentication center, wherein the first 
response (.espox^.e sent from the terminal to the network i. 
also used as the second random number (Challenge 2) , and 
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wlxe^e^y cl.e network h.s p.e.iously requested che second 
.esponee (Response 2) fro. the .uthenticatio. center togetl^er 
with the f ir.t randon. nunO^er (Challenge 1) and the first 
.espon.e (Response 1) as a triplet data set (Challenge 

1/Response l/Respoixse 2) - 

ir respectfully submitted that tHe abo^e- 

de«ri^=d ™ech=d of et al. do,, noc di.clo,, or sue^eet 

tHe «ir« response corresponds Co tha first rsndo™ 

number . 

xn contrast, in the present invention, the first random 
nuntoer (Challenge 1) ie passed to the terxninal, and the 

. 1^^^^ i-he first response (Response 1) based upon 
terminal calculates the txrst reap 

an internally stored key and the first random nutnber 
(Challenge 1), as recited in amended independent claim 1. 

Additionally, in the present invention, the first 
response (Response l) , calculated in the terminal and .ent 
f.om the terminal to the net^orK. is used as the second random 
-narr^er- (Challenge 2) . The n.^work is not required to send 
another random number to the terminal. The required random 
number (Challenge 2) is available in the terminal, as xt 
corresponds to the first response (Response 1) which has been 
calculated by the terminal (see specification of the present 
application, p- 4, IhS . 11-19). 

That is, in the present invention, the terminal does not 
produce the second random number (Challenge 2) . but elates it 
CO the second response (Response 2) (see id., p. 4, In. 20 to 
p 4a m. 5) . The netv^ork can thus produce a second response 
and send it to the terminal, which compares it to the value in 
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the terminal to deteinuitie if the network is authentic (see 
id. ) . 

It is respectfully submitted that neither the cited 
section, nor the remainder, of Clark et al - disclose or 
suggest a method for mutual authentication of components in a 
network comprising the steps of requesting at least one data 
pair including a first random number and a first response from 
an authentication center using a request from the network, 
passing the first random number to the terminal which 
calculates the first response based upon an internally stored 
key and the first random xiumber, sending the calculated first 
response to the network, and responding to a second random 
number with a second response calculated in the authentication 
center, the response performed by the network, wherein the 
first response sent from the terminal to the network is also 
used as the second random number, whereby the network has 
previously requested the second response from the 
authentication center together with the first random number 
and the first response as a triplet data set, as described 
above and as recited in amended independent claim 1. 

Accordingly, for at least the above-stated reasons, it is 
respectfully submitted that iiadependent claim 1. and the 
claims depending therefrom, including claims 2-14, are 
patentable over the cited reference. 

Withdrawal of the rejection of claim 1 under 3S U.S.C. § 
103 (a) is respectfully requested. 

Reconsideration is respectfully requested of the 
rejection of claims 2^14 under 35 U.S.C. § 103(a), as 
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allegedly being unpatentable over Cl.r;. et al . ^iew of U.S. 
Patent No. 5.544,245 to Tsubalciyama . 

^.pplicants l^ave carefully considered the convenes of the 
Office Action and the cited reference., and respectfully 
submit that Claims 2-14 are patentahly distinct over the cited 
references for at least the follo>,ing reasons. 

Tsul^alciyaxna, as understood by Applicants, relates to a 
mutual authentication/cipher Xey delivery sy.te. in which a 

T, =,1 1 of its users have devices for 

communication network and all o£ 

implementing a con^on key cryptosy stem . Identifier XD. of user 
i is made public in the network. An authentication key K, of 
user i is known only to the network and the user, and each 
user generates a randotn nunO^er r„ for authentication of the 
- network and sends it and his identifier ID, to the network. 

The network inputs into a specific function F() the 
rando. nunU^er r„ received fro. the user and a rando. number r. 
generated by the network itsel., encrypts the resulting output 
- v.lue F (r„, rj by an encryption algorithm ElK, () using the 
authentication key K, of the individual user as a cipher key 

^^^rt rfa^a C to the user. The user obtains 
and sends the encrypted data to 

D by inputting the data C. into inverse function EXK^ of 
.Le encryption algorithm ElK. C) using the user's authentication 
Key a. a cipher key, inputs into an inverse function () 
of the function F() , and judges the network to be valid only 
When d. is equal to the random number r„. This is convpletely 
different from the present method. 

It: is respectfully submitted that amended independent 
Claim 1, and the claims depending therefrom, including claims 
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cif^t forth above. 

Clark at al- noi Taubakiyama. alone or xn =o 

rlsa or a»S.aa. a .or ™u.„al a..He=..ca.lo. o. 

Lo.a..a a - ^ ^ -"^r: 

- n ^nr>o a first random number and a 
least one data pair xncludxng a txrst 

r.a.o„aa .ro. a. a„..a«.oa..o. c».ar .aln. a ra^.a. 
,ro» t^. network, pa.ain. t^e fi-. rando. »u»^r 

w-o. calou..«a ..a .irs. response .as.a upon an 

TaLd fira. ra.ponaa Co «a network, and reapondin. to a 
oaloulated f.r.t P ,.l„l,tad in tK. 

second random numUer with a aeeon b- 

. .t.r the response performed l^y the network, 

authentication cent.r. the reap 

first response .ent. from the terminal tc the 

Is arnsed as the second random n..er. wher.. t. 

_rk has pre.io.si. - r 

,„the»ticati=„ canter together „.th the . 
and the first response as a triplet data 

„ recited in amended independent claim 1. 
above and as recxt-eu. ^ ; = 

.ocordin^ly. for at least the a^ove-.tated reasons, it 
respectfully .uhmitted that independent claim 1, and the 
claims dependins therefr»». including claims are 
patentable over the cited references. 

Withdrawal o, the rejection of claims 2-1* under 
„ s c S 103 la) is respectfully revested. 

Should the seminar dlaasree, it is respectfully 
„^e.ted that the .».»iner specify where in the cited 
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document .^.ere is . basis for SUcH disagreement - 

of this an^endmen. is earnestly solicited, and xt 
.eepectfully su^^itted that this amendment raises no ne. 
issues retiring further consideration and/or search, because 

r>f the invention have merely been 
the functional aspects of the mven 

clarified in the atnended claims. 

The Office is hereby authorized to charge any fees which 
be required in connection with this amendment and to 
credit any overpayment to Deposit Account No. 03-3125. 
favorable reconsideration is earnestly solicxted. 



Respectfully Submitted, 



Dated: July 7, 2004 



"l hereby certity that ctiis ^ 

I coxrespc^ndence is being facsimile 

transtnirned on this date to the U.S^ 
[patent: and Tr^demarlc office (Fax, No. 
(703) 872-9306) - 




Norman H. Zivin 
Reg. NO. 23,3S5 




Norman H- 2xvirx 
Reg. No.. 25,3 85 
S/o Cooper & DunliaTti LLP. 
i(b5 AvISue of ^ the Aiuerxcas 
New York, 10 036 

(212) 278-0400 
Attorney for Applicants 
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